There are a couple of ways I know of to allow RCF15-style addresses to
interact with the Internet.
One is by use of a dual homed application proxy firewall such as provided
by the TIS Guantlet or you could "roll your own" based on the TIS
Firewall Toolkit which is available without charge. It wouldn't surprise
be if there were other products that were similar.
There is a hardware item called the Network Address Translator. It can
be used to do an on-the-fly bi-directional translation of network addresses.
I'm not real familair with this product so I'm not certain if the use
of this product would require acqusition of registered addresses so that
there can be a address-by-address mapping or if it can dynamicly assign
registered addresses for mapping to the RFC1597 addresses. If you have to
have a complete set of registered addresses, this product would allow you
to avoid a full-scale network renumbering and/or allow a phased
implementation of a renumbering plan.
On Thu, 28 Sep 1995, peterg @
com (Peter Gregory) wrote:
>Okay, I know this doesn't *exactly* fit this list, but here I go anyway...
>While I'm clear on the concept of having a completely isolated RFC1597
>what about having RFC1597 SUBNETS that are connected to my
>network? Machines on these subnets will not have the means to connect to
>the Internet, nor would these RFC1597 subnets be on a network path from my
>*legal* network addresses and the Internet. Even Class C network numbers
>hard to acquire these days...
**** cjolley @
net <Carl Jolley>
**** All opinions are my own and not necessarily those of my employer ****